Your Evernote Password Has Been Hacked

Evernote, the popular note-taking app on mobile devices and computers, has been hacked, forcing the company to reset all user passwords.

In a blog post, Evernote said the hackers did not take any private user data or payment information. The system-wide password reset is just a precaution.

Here's Evernote's explanation for what happened:

Evernote's Operations & Security team has discovered and blocked suspicious activity on the Evernote network that appears to have been a coordinated attempt to access secure areas of the Evernote Service.

...

In our security investigation, we have found no evidence that any of the content you store in Evernote was accessed, changed or lost. We also have no evidence that any payment information for Evernote Premium or Evernote Business customers was accessed.

The investigation has shown, however, that the individual(s) responsible were able to gain access to Evernote user information, which includes usernames, email addresses associated with Evernote accounts and encrypted passwords. Even though this information was accessed, the passwords stored by Evernote are protected by one-way encryption.

All Evernote users will be prompted to change their password next time they try to log in. The company updated its mobile apps today to make changing your password easier.

The Evernote hacking is the latest in a series of hacks of popular tech companies, web services, and apps. All kinds of companies from Facebook to Apple have experienced some form of hacking in recent weeks.